Reputation: 10095
session.abandon is not generating new session
I am using asp.net 3.5
Session.Abandon() is not using the new SessionId.
Session["abc"] = "abc";
Session.Abandon(); //Session id is same as checked in add watch
Upvotes: 1
Views: 2658
Answers (3)
Reputation: 4253
You can Session.IsNewSession to identify wether the sesiion is new one or not instead of using the SessionId, ASP.net reuses SessionId, as suggested in the KB Article you can get around this by programmatic-ally setting the SessionId to null in the client side cookies.
Session.Abandon();
Response.Cookies.Add(new HttpCookie("ASP.NET_SessionId", ""));
Response.Redirect(Request.Path);
Upvotes: 3
Reputation: 932
Session.Clear() then the session variables clear up but the user remaining in the same session (if you don't want him to relogin for example) and reset all his session specific data.
Session.Abandon() only takes effect after page is completely executed. So the current page that called Abandon still has that same session. All next browser calls will be on a new Session.i.e You lose that specific session and the user will get a new session key.
Upvotes: 2
Reputation: 93434
Yes, and this is by design. It will reuse the same session ID.
See http://support.microsoft.com/kb/899918
Also
http://weblogs.asp.net/karan/archive/2010/04/26/asp-net-session-state-revisited.aspx
Upvotes: 5
Related Questions
- ASP.net MVC 5 Session is not clearing after calling Abandon()
- SessionID is still the same after Session.Abandon call
- Session is not abandoned on logging out
- Why Does Session Abandon Not Work?
- Session Abandon when clicking logout link
- Session.Abandon() does not abandon the session straight away
- session abandon is not working in ASP.NET
- Abandon Session Without Clearing All
- asp.net session dissappers
- Session not ending in ASP.NET